IPv6 support makes openconnect server vpn connection too slow

ipv6 openconnect anyconnect

ULA is not for routing to the internet. It will get dropped before leaving your network resulting in a bad user experience.

Remove the ULA net from ocserv configuration and replace it with one or more /64 from your address plan. These subnets are only for the VPN. For example:

ipv6-network = 2001:db8:3025:1407::/64

On VPN clients with a web browser, verify with a dual stack test such as http://test-ipv6.com/

You have the right idea about implementing IPv6. IPv6 awareness is necessary to secure your networks. Some networks require IPv6. An IPv6 only stack without NAT is a simpler design.

Related

Microsoft Word does not respond to keyboard shortcuts
How to recover deleted voicemail from iPhone 4S?
How can I email a document from iWork without the recipient seeing the intermediate saved versions?
Access password in iOS Keychain
Is there a way to make the iPad stay in the App Store when you buy an app?
How can I disable gestures on a particular workspace?
Never allow speakers sound during specific hours
Compressed archive in Lion creates a root-level "Archive" folder in .zip file
what is "translate" and why does it want access to my keychain?
How can I fix my GPT?
What is this odd Excel file doing here?
Is it possible to access a Mac via SSH without administrator access?